EUVD-2001-1257

Malware in sbrugna...

Fedora Update for aspell FEDORA-2019-1e0f7ac968

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 31 Update: mingw-hunspell-1.7.0-6.fc31

Hunspell is a spell checker and morphological analyzer library and program designed for languages with rich morphology and complex word compounding or character encoding. Hunspell interfaces: Ispell-like terminal interface usi ng Curses library, Ispell pipe interface, OpenOffice.org UNO module...

[SECURITY] Fedora 31 Update: hunspell-1.7.0-4.fc31

Hunspell is a spell checker and morphological analyzer library and program designed for languages with rich morphology and complex word compounding or character encoding. Hunspell interfaces: Ispell-like terminal interface usi ng Curses library, Ispell pipe interface, LibreOffice UNO module...

Fedora Update for aspell FEDORA-2019-73919e71f8

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2006-0055

The ispellop function in ee on FreeBSD 4.10 to 6.0 uses predictable filenames and does not confirm which file is being written, which allows local users to overwrite arbitrary files via a symlink attack when ee invokes ispell...

Code injection

The ispellop function in ee on FreeBSD 4.10 to 6.0 uses predictable filenames and does not confirm which file is being written, which allows local users to overwrite arbitrary files via a symlink attack when ee invokes ispell...

CVE-2006-0055

The ispellop function in ee on FreeBSD 4.10 to 6.0 uses predictable filenames and does not confirm which file is being written, which allows local users to overwrite arbitrary files via a symlink attack when ee invokes ispell...

CVE-2006-0055

The CVE-2006-0055 issue affects the ee editor on FreeBSD 4.10–6.0, where the ispell_op function generates predictable temporary file names and does not verify which file is written. This race condition allows a local user to perform a symlink attack and potentially overwrite arbitrary files durin...

FreeBSD-SA-06:02.ee

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:02.ee Security Advisory The FreeBSD Project Topic: ee temporary file privilege escalation Category: core Module: ee Announced: 2006-01-11 Credits: Christian...

ee -- temporary file privilege escalation

Problem description The ispellop function used by ee1 while executing spell check operations employs an insecure method of temporary file generation. This method produces predictable file names based on the process ID and fails to confirm which path will be over written with the user. It should b...

Mandrake Linux Security Advisory : ispell (MDKSA-2001:058)

The ispell program uses mktemp to open temporary files. This makes it vulnerable to symlink attacks. The program now has a patch from OpenBSD applied that uses mkstemp instead, and switches gets to fgets for dealing with user input. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

CVE-2001-1276

The CVE-2001-1276 vulnerability affects ispell prior to 3.1.20. A local user can exploit a race condition by symlinking a temporary file used by ispell, allowing overwrite of another user’s files. Root cause: ispell used mktemp() for temp files; patches switch to mkstemp() and revise input handli...

CVE-2001-1276

ispell before 3.1.20 allows local users to overwrite files of other users via a symlink attack on a temporary file...

CVE-2001-1276

ispell before 3.1.20 allows local users to overwrite files of other users via a symlink attack on a temporary file...

[RHSA-2001:074-03] Updated ispell packages available for Red Hat Linux 5.2 and 6.2

--------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: Updated ispell packages available for Red Hat Linux 5.2 and 6.2 Advisory ID: RHSA-2001:074-03 Issue date: 2001-05-30 Updated on: 2001-06-04 Product: Red Hat Linux Keywords: ispe...

Символьные линки в ispell (symbolic link)

Используется mktemp...